Under Armour Data Breach Investigation

Chimicles Schwartz Kriner & Donaldson-Smith LLP is investigating potential class action claims against Under Armour, Inc. following reports of a significant data security incident. This incident may have impacted the personal information of millions of individuals, including customers and possibly employees.

What Happened at Under Armour?

In or around November 2025, the Everest ransomware group claimed responsibility for a breach of Under Armour’s systems, allegedly exfiltrating 343 GB of sensitive data. Reports indicate that the stolen data includes customer shopping histories, email addresses, phone numbers, and other account-related details. A sample of the stolen data was posted on a dark web leak site, and the threat actor issued a seven-day ultimatum to Under Armour.

What Information Was Compromised?

The compromised data reportedly includes:

• Names and contact details

• Purchase history and transaction identifiers

• Marketing and account metadata

Why Is This Important?

Exposure of this information places affected individuals at risk of identity theft, phishing attacks, and fraud. Sensitive identifiers combined with purchase and location data can enable sophisticated scams.

What Should You Do?

If you have purchased Under Armour products or were employed by Under Armour, and believe your personal information may have been compromised, please contact one of our data breach attorneys by filling out the form below to learn more about your legal rights.